Merge pull request #204434 from timwarner-msft/timwarner-eventadd

Refactor Event Grid integration details

Author: v-MarkAllen

articles/event-grid/event-schema-policy.md

@@ -1,10 +1,10 @@
 ---
 title: Azure Policy as an Event Grid source
-description: This article describes how to use Azure Policy as an Event Grid event source. It provides the schema and links to tutorial and how-to articles. 
+description: This article describes how to use Azure Policy as an Event Grid event source. It provides the schema and links to tutorial and how-to articles.
 ms.topic: conceptual
-author: DCtheGeek
-ms.author: dacoulte
-ms.date: 09/15/2021
+author: timwarner-msft
+ms.author: timwarner
+ms.date: 07/12/2022
 ---
 
 # Azure Policy as an Event Grid source
@@ -14,156 +14,7 @@ events. For an introduction to event schemas, see
 [Azure Event Grid event schema](./event-schema.md). It also gives you a list of quick starts and
 tutorials to use Azure Policy as an event source.
 
-## Available event types
-
-Azure Policy emits the following event types:
-
-| Event type | Description |
-| ---------- | ----------- |
-| Microsoft.PolicyInsights.PolicyStateCreated | Raised when a policy compliance state is created. |
-| Microsoft.PolicyInsights.PolicyStateChanged | Raised when a policy compliance state is changed. |
-| Microsoft.PolicyInsights.PolicyStateDeleted | Raised when a policy compliance state is deleted. |
-
-## Example event
-
-# [Event Grid event schema](#tab/event-grid-event-schema)
-The following example shows the schema of a policy state created event: 
-
-```json
-[{
-    "id": "5829794FCB5075FCF585476619577B5A5A30E52C84842CBD4E2AD73996714C4C",
-    "topic": "/subscriptions/<SubscriptionID>",
-    "subject": "/subscriptions/<SubscriptionID>/resourceGroups/<ResourceGroup>/providers/<ProviderNamespace>/<ResourceType>/<ResourceName>",
-    "data": {
-        "timestamp": "2021-03-27T18:37:42.4496956Z",
-        "policyAssignmentId": "<policy-assignment-scope>/providers/microsoft.authorization/policyassignments/<policy-assignment-name>",
-        "policyDefinitionId": "<policy-definition-scope>/providers/microsoft.authorization/policydefinitions/<policy-definition-name>",
-        "policyDefinitionReferenceId": "",
-        "complianceState": "NonCompliant",
-        "subscriptionId": "<subscription-id>",
-        "complianceReasonCode": ""
-    },
-    "eventType": "Microsoft.PolicyInsights.PolicyStateCreated",
-    "eventTime": "2021-03-27T18:37:42.5241536Z",
-    "dataVersion": "1",
-    "metadataVersion": "1"
-}]
-```
-
-The schema for a policy state changed event is similar: 
-
-```json
-[{
-    "id": "5829794FCB5075FCF585476619577B5A5A30E52C84842CBD4E2AD73996714C4C",
-    "topic": "/subscriptions/<SubscriptionID>",
-    "subject": "/subscriptions/<SubscriptionID>/resourceGroups/<ResourceGroup>/providers/<ProviderNamespace>/<ResourceType>/<ResourceName>",
-    "data": {
-        "timestamp": "2021-03-27T18:37:42.4496956Z",
-        "policyAssignmentId": "<policy-assignment-scope>/providers/microsoft.authorization/policyassignments/<policy-assignment-name>",
-        "policyDefinitionId": "<policy-definition-scope>/providers/microsoft.authorization/policydefinitions/<policy-definition-name>",
-        "policyDefinitionReferenceId": "",
-        "complianceState": "NonCompliant",
-        "subscriptionId": "<subscription-id>",
-        "complianceReasonCode": ""
-    },
-    "eventType": "Microsoft.PolicyInsights.PolicyStateChanged",
-    "eventTime": "2021-03-27T18:37:42.5241536Z",
-    "dataVersion": "1",
-    "metadataVersion": "1"
-}]
-```
-# [Cloud event schema](#tab/cloud-event-schema)
-
-The following example shows the schema of a policy state created event: 
-
-```json
-[{
-    "id": "5829794FCB5075FCF585476619577B5A5A30E52C84842CBD4E2AD73996714C4C",
-    "source": "/subscriptions/<SubscriptionID>",
-    "subject": "/subscriptions/<SubscriptionID>/resourceGroups/<ResourceGroup>/providers/<ProviderNamespace>/<ResourceType>/<ResourceName>",
-    "data": {
-        "timestamp": "2021-03-27T18:37:42.4496956Z",
-        "policyAssignmentId": "<policy-assignment-scope>/providers/microsoft.authorization/policyassignments/<policy-assignment-name>",
-        "policyDefinitionId": "<policy-definition-scope>/providers/microsoft.authorization/policydefinitions/<policy-definition-name>",
-        "policyDefinitionReferenceId": "",
-        "complianceState": "NonCompliant",
-        "subscriptionId": "<subscription-id>",
-        "complianceReasonCode": ""
-    },
-    "type": "Microsoft.PolicyInsights.PolicyStateCreated",
-    "time": "2021-03-27T18:37:42.5241536Z",
-    "specversion": "1.0"
-}]
-```
-
-The schema for a policy state changed event is similar: 
-
-```json
-[{
-    "id": "5829794FCB5075FCF585476619577B5A5A30E52C84842CBD4E2AD73996714C4C",
-    "source": "/subscriptions/<SubscriptionID>",
-    "subject": "/subscriptions/<SubscriptionID>/resourceGroups/<ResourceGroup>/providers/<ProviderNamespace>/<ResourceType>/<ResourceName>",
-    "data": {
-        "timestamp": "2021-03-27T18:37:42.4496956Z",
-        "policyAssignmentId": "<policy-assignment-scope>/providers/microsoft.authorization/policyassignments/<policy-assignment-name>",
-        "policyDefinitionId": "<policy-definition-scope>/providers/microsoft.authorization/policydefinitions/<policy-definition-name>",
-        "policyDefinitionReferenceId": "",
-        "complianceState": "NonCompliant",
-        "subscriptionId": "<subscription-id>",
-        "complianceReasonCode": ""
-    },
-    "type": "Microsoft.PolicyInsights.PolicyStateChanged",
-    "time": "2021-03-27T18:37:42.5241536Z",
-    "specversion": "1.0"
-}]
-```
-
----
-
-## Event properties
-
-# [Event Grid event schema](#tab/event-grid-event-schema)
-
-An event has the following top-level data:
-
-| Property | Type | Description |
-| -------- | ---- | ----------- |
-| `topic` | string | Full resource path to the event source. This field isn't writeable. Event Grid provides this value. |
-| `subject` | string | The fully qualified ID of the resource that the compliance state change is for, including the resource name and resource type. Uses the format, `/subscriptions/<SubscriptionID>/resourceGroups/<ResourceGroup>/providers/<ProviderNamespace>/<ResourceType>/<ResourceName>` |
-| `eventType` | string | One of the registered event types for this event source. |
-| `eventTime` | string | The time the event is generated based on the provider's UTC time. |
-| `id` | string | Unique identifier for the event. |
-| `data` | object | Azure Policy event data. |
-| `dataVersion` | string | The schema version of the data object. The publisher defines the schema version. |
-| `metadataVersion` | string | The schema version of the event metadata. Event Grid defines the schema of the top-level properties. Event Grid provides this value. |
-
-# [Cloud event schema](#tab/cloud-event-schema)
-
-An event has the following top-level data:
-
-| Property | Type | Description |
-| -------- | ---- | ----------- |
-| `source` | string | Full resource path to the event source. This field isn't writeable. Event Grid provides this value. |
-| `subject` | string | The fully qualified ID of the resource that the compliance state change is for, including the resource name and resource type. Uses the format, `/subscriptions/<SubscriptionID>/resourceGroups/<ResourceGroup>/providers/<ProviderNamespace>/<ResourceType>/<ResourceName>` |
-| `type` | string | One of the registered event types for this event source. |
-| `time` | string | The time the event is generated based on the provider's UTC time. |
-| `id` | string | Unique identifier for the event. |
-| `data` | object | Azure Policy event data. |
-| `specversion` | string | CloudEvents schema specification version. |
-
----
-
-The data object has the following properties:
-
-| Property | Type | Description |
-| -------- | ---- | ----------- |
-| `timestamp` | string | The time (in UTC) that the resource was scanned by Azure Policy. For ordering events, use this property instead of the top-level `eventTime` or `time` properties. |
-| `policyAssignmentId` | string | The resource ID of the policy assignment. |
-| `policyDefinitionId` | string | The resource ID of the policy definition. |
-| `policyDefinitionReferenceId` | string | The reference ID for the policy definition inside the initiative definition, if the policy assignment is for an initiative. May be empty. |
-| `complianceState` | string | The compliance state of the resource with respect to the policy assignment. |
-| `subscriptionId` | string | The subscription ID of the resource. |
-| `complianceReasonCode` | string | The compliance reason code. May be empty. |
+[!INCLUDE [policy-events.md](../../includes/policy/policy-events.md)]
 
 ## Next steps
 

articles/governance/policy/concepts/event-overview.md

@@ -1,8 +1,10 @@
 ---
 title: Reacting to Azure Policy state change events
-description: Use Azure Event Grid to subscribe to App Policy events, which allow applications to react to state changes without the need for complicated code.
-ms.date: 08/17/2021
+description: Use Azure Event Grid to subscribe to Azure Policy events, which allow applications to react to state changes without the need for complicated code.
+ms.date: 07/12/2022
 ms.topic: conceptual
+ms.author: timwarner
+author: timwarner-msft
 ---
 # Reacting to Azure Policy state change events
 
@@ -32,66 +34,7 @@ for a full tutorial.
 
 :::image type="content" source="../../../event-grid/media/overview/functional-model.png" alt-text="Event Grid model of sources and handlers" lightbox="../../../event-grid/media/overview/functional-model-big.png":::
 
-## Available Azure Policy events
-
-Event Grid uses [event subscriptions](../../../event-grid/concepts.md#event-subscriptions) to route
-event messages to subscribers. Azure Policy event subscriptions can include three types of events:
-
-| Event type | Description |
-| ---------- | ----------- |
-| Microsoft.PolicyInsights.PolicyStateCreated | Raised when a policy compliance state is created. |
-| Microsoft.PolicyInsights.PolicyStateChanged | Raised when a policy compliance state is changed. |
-| Microsoft.PolicyInsights.PolicyStateDeleted | Raised when a policy compliance state is deleted. |
-
-## Event schema
-
-Azure Policy events contain all the information you need to respond to changes in your data. You can
-identify an Azure Policy event when the `eventType` property starts with "Microsoft.PolicyInsights".
-Additional information about the usage of Event Grid event properties is documented in
-[Event Grid event schema](../../../event-grid/event-schema.md).
-
-| Property | Type | Description |
-| -------- | ---- | ----------- |
-| `id` | string | Unique identifier for the event. |
-| `topic` | string | Full resource path to the event source. This field isn't writeable. Event Grid provides this value. |
-| `subject` | string | The fully qualified ID of the resource that the compliance state change is for, including the resource name and resource type. Uses the format, `/subscriptions/<SubscriptionID>/resourceGroups/<ResourceGroup>/providers/<ProviderNamespace>/<ResourceType>/<ResourceName>` |
-| `data` | object | Azure Policy event data. |
-| `data.timestamp` | string | The time (in UTC) that the resource was scanned by Azure Policy. For ordering events, use this property instead of the top level `eventTime` or `time` properties. |
-| `data.policyAssignmentId` | string | The resource ID of the policy assignment. |
-| `data.policyDefinitionId` | string | The resource ID of the policy definition. |
-| `data.policyDefinitionReferenceId` | string | The reference ID for the policy definition inside the initiative definition, if the policy assignment is for an initiative. May be empty. |
-| `data.complianceState` | string | The compliance state of the resource with respect to the policy assignment. |
-| `data.subscriptionId` | string | The subscription ID of the resource. |
-| `data.complianceReasonCode` | string | The compliance reason code. May be empty. |
-| `eventType` | string | One of the registered event types for this event source. |
-| `eventTime` | string | The time the event is generated based on the provider's UTC time. |
-| `dataVersion` | string | The schema version of the data object. The publisher defines the schema version. |
-| `metadataVersion` | string | The schema version of the event metadata. Event Grid defines the schema of the top-level properties. Event Grid provides this value. |
-
-Here's an example of a policy state change event:
-
-```json
-[{
-    "id": "5829794FCB5075FCF585476619577B5A5A30E52C84842CBD4E2AD73996714C4C",
-    "topic": "/subscriptions/<SubscriptionID>",
-    "subject": "/subscriptions/<SubscriptionID>/resourceGroups/<ResourceGroup>/providers/<ProviderNamespace>/<ResourceType>/<ResourceName>",
-    "data": {
-        "timestamp": "2021-03-27T18:37:42.4496956Z",
-        "policyAssignmentId": "<policy-assignment-scope>/providers/microsoft.authorization/policyassignments/<policy-assignment-name>",
-        "policyDefinitionId": "<policy-definition-scope>/providers/microsoft.authorization/policydefinitions/<policy-definition-name>",
-        "policyDefinitionReferenceId": "",
-        "complianceState": "NonCompliant",
-        "subscriptionId": "<subscription-id>",
-        "complianceReasonCode": ""
-    },
-    "eventType": "Microsoft.PolicyInsights.PolicyStateChanged",
-    "eventTime": "2021-03-27T18:37:42.5241536Z",
-    "dataVersion": "1",
-    "metadataVersion": "1"
-}]
-```
-
-For more information, see [Azure Policy events schema](../../../event-grid/event-schema-policy.md).
+[!INCLUDE [policy-events.md](../../../../includes/policy/policy-events.md)]
 
 ## Practices for consuming events